UK WEB HOSTING FORUM FOR DISCUSSION ON WEB HOSTING SERVICE AND SUPPORT
LINUX HOSTING WINDOWS HOSTING PACKAGES SHOPPING CART OSCOMMERCE ZEN CART AGORA
ECOMMERCE HOSTING ASP MSSQL FRONTPAGE HOSTING PHP MYSQL HOSTING DISCUSSION FORUM
CPANEL RESELLER HOSTING DEDICATED SERVER VPS HOSTING PLESK VIRTUOZZO
Quick Search
Your forum announcement here!

  UK Web Hosting | Dedicated Server Windows and Linux VPS Forum > Technical Support > System Security
File Permissions

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 21-04-2008, 09:30
new member
  
Join Date: Apr 2008
Posts: 6
Default File Permissions
I notice that files in the public_html folder need to be chmod 644 (755 for directories). Isn't that a bit insecure? On my web server at work, we use 640 and 750, with the 'group' set to the web server process.

I tried changing the permissions via file manager to 640 and 750 and it all stopped working.

I'm not sure I want 'others' (ie. everyone with shell access) to be snooping my files to see passwords embedded in PHP and so on. How is your system set up to prevent this when all files need to be 644 and 755?
Reply With Quote
  #2 (permalink)  
Old 21-04-2008, 09:40
WelshTom's Avatar
Moderator
  
Join Date: May 2007
Location: Newport, Wales
Posts: 721
Send a message via AIM to WelshTom Send a message via MSN to WelshTom Send a message via Yahoo to WelshTom
Default
No one is permitted shell access on the eUKhost servers. If they do want shell access, they are put on a server specifically designed for users who want it.

755 permissions are perfectly safe.

What you do not want to do is use 777 - but as I've said, rest assured that 755 is secure.
__________________
UK Professional Website Design.
Discount to eUKhost customers for Website Design Services.

Need to MONITOR your servers (SMS/Text-Message Features Included) - Please see http://monitor.twrwebdesign.co.uk.
TWR Web Design
http://www.twrwebdesign.co.uk/
Reply With Quote
  #3 (permalink)  
Old 21-04-2008, 09:50
new member
  
Join Date: Apr 2008
Posts: 6
Default
Thanks for that.
Would be interesting to know why you are not set up to have the web server process as 'group', but maybe you can't say for security reasons
Reply With Quote
  #4 (permalink)  
Old 22-04-2008, 06:53
Rock's Avatar
System Administrator
  
Join Date: Dec 2006
Posts: 513
Cool
Also... we've various other security measures implemented/enabled on our server such as mod_user [apache module] & PHP_OpenBaseDir restriction limits users to their directory only, in short it disables the access/ability of users from reading other users' directories/files. Users can read only those files & folders whom are owned by them.

If this wasn't the case.. just imagine everyone having access anywhere... it'd have been a very dangerous exploit causing severe problems & havoc everywhere..
....> <....
__________________

Rock _a.k.a._ Jack L.
http://www.eUKhost.com
Windows Hosting || Windows Reseller Hosting
Reply With Quote
Reply

« Securing SSH | - »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 11:32.

 

Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by Web Hosting 3.1.0
Copyright © 2001-2008, eUKhost.com. All rights reserved.

Dedicated Server Hosting | VPS Hosting | Web Hosting UK | cPanel Hosting | Contact Us | UK Web Hosting | Archive
 
Site Map

knowledgebase articles

popular blog categories